Canvas LMS SSO | Integrate SAML login into Canvas using Drupal as IDP


Drupal Canvas LMS Integration will allow you to integrate Single Sign-On ( SSO ) login between your Drupal site and Canvas LMS. Canvas SSO integration with your Drupal site will help your users to login into Canvas LMS using their Drupal credentials. The Drupal SAML IDP - SAML 2.0 Identity Provider SSO module is compatible with Drupal 7, Drupal 8 as well as Drupal 9.
Here we will go through a step-by-step guide to configure SAML SSO login between Drupal website as IdP ( Identity Provider ) and Canvas LMS as SP ( Service Provider ).

If you have any doubts or queries, you can contact us at drupalsupport@xecurify.com. We will help you to configure the module. If you want, we can also schedule an online meeting to help you configure the Drupal SAML IDP 2.0 Single Sign On (SSO) - SAML Identity Provider module.


Pre-requisite: Download and Installation 


  • For Window:
    composer require drupal/miniorange_saml_idp
  • For Linux:
    composer require 'drupal/miniorange_saml_idp'
  • Navigate to Extend menu on your Drupal admin console and search for miniOrange SAML Identity Provider using the search box.
  • Enable the module by checking the checkbox and click on install button.
  • Configure the module at
    {BaseURL}/admin/config/people/miniorange_saml_idp/idp_setup
  • Download the module:
    drush dl miniorange_saml_idp
  • Install the module:
    drush en miniorange_saml_idp
  • Clear the cache:
     drush cr
  • Configure the module at
    {BaseURL}/admin/config/people/miniorange_saml_idp/idp_setup
  • Navigate to Extend menu on your Drupal admin console and click on Install new module button.
  • Install the Drupal SAML IDP 2.0 Single Sign On (SSO) - SAML Identity Provider module either by downloading the zip or from the URL of the package (tar/zip).
  • Click on Enable newly added modules.
  • Enable this module by checking the checkbox and click on install button.
  • Configure the module at
    {BaseURL}/admin/config/people/miniorange_saml_idp/idp_setup

Steps to configure Canvas Lms SAML Single Sign-On (SSO) Login into Drupal site

1. Configure Drupal as Identity Provider

  • Go to IDP Metadata, Copy the IDP Entity ID/Issuer and SAML Login URL and Keep it handy.
  • drupal saml idp - idp metadata tab
  • In the Service Provoder Setup tab, you can enter the name of Service Provider as Canvas (Canvas Lms as SAML SP).
  • Navigate to the Service Provider Setup tab of the miniOrange SAML Identity Provider module on your Drupal site. There are two way to configure your Identity Provider ( Drupal as SAML IDP ):
    • A. By Uploading SP metadata:
    • Click on UPLOAD SP METADATA link.
    • You can either Upload Metadata File and click on Upload button or use a Upload Metadata URL and click on Fetch Metadata.
    • drupal saml idp service provider setup
      B. Manual Configuration:
    • Navigate to Service Provider Setup tab of the miniOrange Drupal IDP module.
    • Provide the required settings (i.e. Service Provider Name, SP Entity ID or Issuer, ACS (Assertion Consumer Service) URL, X.509 Certificate (Optional)) as provided by your Service Provider Canvas ( Canvas Lms as SP ).
    • Service Provider NameEnter any appropriate name for your Service Provider.
      SP EntityIDhttps://your_domain.acme.instructure.com/saml_consum
      ACS URLhttps://your_domain.acme.instructure.com/saml_consume
  • Click on the Save Configuration button to save your configuration. Then click on Test Configuration button to test your configuration.

2. Configure Canvas Lms as Service Provider

  • Login to your Canvas LMS domain as an Account Administrator.
  • Switch to Admin View.
  • SAML Single Sign-On (SSO) Login Canvas Lms (SP) - click admin view Integration with Canvas LMS
  • Go to Courses and under Managed Accounts, click on your domain name.
  • SAML Single Sign-On (SSO) Login Canvas Lms (SP) - click on managed accounts Integrate with Canvas LMS
  • Click on Authentication in the left pane and select SAML from the Choose an authentication service drop down list.
  • SAML Single Sign-On (SSO) Login Canvas Lms (SP) - Authentication setting in Canvas LMS
  • Under Current Integration, click on Add New SAML Config and enter the details as shown:
  • SAML Single Sign-On (SSO) Login Canvas Lms (SP) - new saml configuration in Canvas LMS as sp
    IdP Entity ID Copy IDP Entity ID / Issuer from IDP Metadata tab in Drupal SAML IDP module and paste it.
    Log On URL Copy SAML Login URL from IDP Metadata tab in Drupal SAML IDP module and paste it.
    Log Out URL Copy SAML Logout URI from IDP Metadata tab in Drupal SAML IDP module and paste it.
    Certificate FingerprintFollow the steps below to copy the Thumbprint of certificate:
    1. Open the certificate that was downloaded earlier.
    2. Go to Details and in the field column select Thumbprint.
    3. Copy the Thumbprint that opens in the pane by pressing CTRL+C (Right-Click won’t work!).
    4. Paste the Thumbprint in the Certificate Fingerprint.
    Make sure that there are no spaces in between the Certificate Fingerprint. Remove them manually.
    Login AttributeNameID
    Identifier Formaturn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress
    Authentication Contexturn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport
    Login LabelUsername
    Unknown User UrlLeave blank.

24*7 Active Support

If you face any issues or if you have any questions, please feel free to reach out to us at drupalsupport@xecurify.com. In case you want some additional features to be included in the module, please get in touch with us, and we can get that custom-made for you. Also, If you want, we can also schedule an online meeting to help you configure the Drupal SAML IDP SSO Login module.

Free Trial

If you would like to test out the module to ensure your business use case is fulfilled, we do provide a 7-day trial. Please drop us an email at drupalsupport@xecurify.com requesting a trial. You can create an account with us using this link.

Additional Resources

Our Other modules

Hello there!

Need Help? We are right here!

support
Contact miniOrange Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com